Re: Please consider krb5 1.4.4-6 for testing

[Russ Allbery <rra@debian.org>]

Marc 'HE' Brockschmidt <he@ftwca.de> writes:
> Sam Hartman <hartmans@debian.org>, Sam Hartman <hartmans@mit.edu>
> writes:
>> krb5 1.4.4-6 fixes mit-sa-2006-2 (see
>> http://web.mit.edu/kerberos/advisories/ ) which is a fairly serious
>> bug found through a mostly unrelated problem.

> What's with mit-sa-2006-03 (CVE-2006-6144)? I have no idea about krb, so
> please forgive me if that question is too stupid :)

It only affects 1.5 and later.

-- 
Russ Allbery (rra@debian.org)               <http://www.eyrie.org/~eagle/>